Privacy-preserving deep learning

Deep learning based on artificial neural networks is a very popular approach to modeling, classifying, and recognizing complex data such as images, speech, and text. The unprecedented accuracy of deep learning methods has turned them into the foundation of new AI-based services on the Internet. Commercial companies that collect user data on a large scale have been the main beneficiaries of this trend since the success of deep learning techniques is directly proportional to the amount of data available for training. Massive data collection required for deep learning presents obvious privacy issues. Users' personal, highly sensitive data such as photos and voice recordings is kept indefinitely by the companies that collect it. Users can neither delete it, nor restrict the purposes for which it is used. Furthermore, centrally kept data is subject to legal subpoenas and extrajudicial surveillance. Many data owners-for example, medical institutions that may want to apply deep learning methods to clinical records-are prevented by privacy and confidentiality concerns from sharing the data and thus benefitting from large-scale deep learning. In this paper, we present a practical system that enables multiple parties to jointly learn an accurate neural-network model for a given objective without sharing their input datasets. We exploit the fact that the optimization algorithms used in modern deep learning, namely, those based on stochastic gradient descent, can be parallelized and executed asynchronously. Our system lets participants train independently on their own datasets and selectively share small subsets of their models' key parameters during training. This offers an attractive point in the utility/privacy tradeoff space: participants preserve the privacy of their respective data while still benefitting from other participants' models and thus boosting their learning accuracy beyond what is achievable solely on their own inputs. We demonstrate the accuracy of our privacy-preserving deep learning on benchmark datasets.

• Publication year

  2015

• Venue

  Allerton Conference on Communication, Control, and Computing

• Publication date

  2015-09-01

• Fields of study

  Computer Science

• Identifiers
  DOI 10.1145/2810103.2813687
• External record

  Open on Semantic Scholar

• Source metadata

  Semantic Scholar

• No claims are published for this paper.

• No concepts are published for this paper.

• Delving Deep into Rectifiers: Surpassing Human-Level Performance on ImageNet Classification

  2015cited by this paper
• Integrative Data Analysis of Multi-Platform Cancer Data with a Multimodal Deep Learning Approach

  2015cited by this paper
• The privacy arms race. When your voice betrays you.

  2015cited by this paper
• The human splicing code reveals new insights into the genetic determinants of disease

  2015cited by this paper
• Privacy Preserving Data Mining

  2015cited by this paper
• To Drop or Not to Drop: Robustness, Consistency and Differential Privacy Properties of Dropout

  2015cited by this paper
• Crypto-Nets: Neural Networks over Encrypted Data

  2014cited by this paper
• A tutorial survey of architectures, algorithms, and applications for deep learning

  2014cited by this paper
• Private Empirical Risk Minimization: Efficient Algorithms and Tight Error Bounds

  2014cited by this paper
• Private Predictive Analysis on Encrypted Medical Data

  2014cited by this paper
• The Algorithmic Foundations of Differential Privacy

  2014cited by this paper
• DeepFace: Closing the Gap to Human-Level Performance in Face Verification

  2014cited by this paper
• Deep Speech: Scaling up end-to-end speech recognition

  2014cited by this paper
• Dropout: a simple way to prevent neural networks from overfitting

  2014cited by this paper
• Deep modeling of gene expression regulation in an Erythropoiesis model

  2013cited by this paper
• Using deep learning to enhance cancer diagnosis and classication

  2013cited by this paper
• Privacy-Preserving Speaker Verification and Identification Using Gaussian Mixture Models

  2013cited by this paper
• A Deep Learning Architecture for Image Representation, Visual Interpretability and Automated Basal-Cell Carcinoma Cancer Detection

  2013cited by this paper
• Speech recognition with deep recurrent neural networks

  2013cited by this paper
• Signal Processing and Machine Learning with Differential Privacy: Algorithms and Challenges for Continuous Data

  2013cited by this paper
• Large Scale Distributed Deep Networks

  2012cited by this paper
• Near-Optimal Algorithms for Differentially-Private Principal Components

  2012cited by this paper
• Functional Mechanism: Regression Analysis under Differential Privacy

  2012cited by this paper
• Privacy Aware Learning

  2012cited by this paper
• Dissent in Numbers: Making Strong Anonymity Scale

  2012cited by this paper
• ImageNet classification with deep convolutional neural networks

  2012cited by this paper
• Deep Neural Networks for Acoustic Modeling in Speech Recognition: The Shared Views of Four Research Groups

  2012cited by this paper
• Machine learning - a probabilistic perspective

  2012cited by this paper
• Torch7: A Matlab-like Environment for Machine Learning

  2011cited by this paper
• Adaptive Subgradient Methods for Online Learning and Stochastic Optimization

  2011cited by this paper
• Reading Digits in Natural Images with Unsupervised Feature Learning

  2011cited by this paper
• Privacy-Preserving ECG Classification With Branching Programs and Neural Networks

  2011cited by this paper
• A reliable effective terascale linear learning system

  2011cited by this paper
• Hogwild: A Lock-Free Approach to Parallelizing Stochastic Gradient Descent

  2011cited by this paper
• Privacy preserving probabilistic inference with Hidden Markov Models

  2011cited by this paper
• Dissent: accountable anonymous group messaging

  2010cited by this paper
• Airavat: Security and Privacy for MapReduce

  2010cited by this paper
• A Multiplicative Weights Mechanism for Privacy-Preserving Data Analysis

  2010cited by this paper
• Parallelized Stochastic Gradient Descent

  2010cited by this paper
• Boosting and Differential Privacy

  2010cited by this paper
• Multiparty Differential Privacy via Aggregation of Locally Trained Classifiers

  2010cited by this paper
• Differentially Private Empirical Risk Minimization

  2009cited by this paper
• Learning in a Large Function Space: Privacy-Preserving Mechanisms for SVM Learning

  2009cited by this paper
• Analysis and Methods

  2008cited by this paper
• Privacy-preserving Naïve Bayes classification

  2008cited by this paper
• Privacy-preserving logistic regression

  2008cited by this paper
• Extracting and composing robust features with denoising autoencoders

  2008cited by this paper
• Learning Deep Architectures for AI

  2007cited by this paper
• Differential Privacy

  2006cited by this paper
• How to win the clonewars: efficient periodic n-times anonymous authentication

  2006cited by this paper
• Privacy-preserving distributed k-means clustering over arbitrarily partitioned data

  2005cited by this paper
• Rank, Trace-Norm and Max-Norm

  2005cited by this paper
• Solving large scale linear prediction problems using stochastic gradient descent algorithms

  2004cited by this paper
• Privacy-Preserving Multivariate Statistical Analysis: Linear Regression and Classification

  2004cited by this paper
• Best practices for convolutional neural networks applied to visual document analysis

  2003cited by this paper
• Privacy preserving association rule mining in vertically partitioned data

  2002cited by this paper
• Gradient-based learning applied to document recognition

  1998cited by this paper
• Learning internal representations by error propagation

  1986cited by this paper
• Nonlinear programming

  1976cited by this paper

• Contrastive Learning for Privacy Enhancements in Industrial Internet of Things

  2026cites this paper
• From Isolation to Integration: Building an Adaptive Expert Forest for Pre-Trained Model-based Class-Incremental Learning

  2026cites this paper
• A Review on Penetration Testing for Privacy of Deep Learning Models

  2026cites this paper
• Privacy-Preserving Digital Twin Framework for Autonomous and Connected Vehicles

  2026cites this paper
• A Collaborative Learning Schedule for Split-Federated Learning in IoT Environments

  2026cites this paper
• Compliance Management for Federated Data Processing

  2026cites this paper
• Heterogeneous GNN-driven and meta-learned architecture for transparent multimodal string similarity estimation

  2026cites this paper
• Neighborhood Blending: A Lightweight Inference-Time Defense Against Membership Inference Attacks

  2026cites this paper
• Accurate, private, secure, federated U-statistics with higher degree

  2026cites this paper
• Development of federated learning neural networks with combined horizontal and vertical data partitioning

  2026cites this paper
• Driver-Intention Prediction with Deep Learning: Real-Time Brain-to-Vehicle Communication

  2026cites this paper
• PrivGuardInfer: Channel-Level End-Edge Collaborative Inference Strategy Protecting Original Inputs and Sensitive Attributes

  2026cites this paper
• PAC-Private Responses with Adversarial Composition

  2026cites this paper
• Both ends of artificial intelligence impacting privacy: a review of violation and protection.

  2026cites this paper
• PriFLRC: A secure multi-party computation-based privacy-enhanced federated learning scheme resilient to collusion

  2026cites this paper
• Smart UDI for Medical Devices: Global Harmonization, Cybersecurity, and Digital Convergence

  2026cites this paper
• RPWithPrior: Label Differential Privacy in Regression

  2026cites this paper
• Machine Learning for Cybersecurity: A Comprehensive Literature Review

  2026cites this paper
• NSHEDB: Noise-Sensitive Homomorphic Encrypted Database Query Engine

  2026cites this paper
• Adaptive routing protocol for large-scale power internet of things based on edge computing and federated learning.

  2026cites this paper
• Cyber-Security in Cyber-Physical Systems and Critical Infrastructure: A Self-Healing Federated Learning Intrusion Detection Framework

  2026cites this paper
• An Overview of Deep Learning Techniques for Big Data IoT Applications

  2026cites this paper
• Personalization in smart urban environments: a taxonomy and survey of recommender systems

  2026cites this paper
• Casper: A Causality-Inspired Defense With Confounder Against Label Inference Attacks in Vertical Split Federated Learning

  2026influential citation
• Federated Learning-Driven Covert Communication in Satellite–Terrestrial Integrated Networks: A Privacy-Preserving Framework

  2026cites this paper
• AR2FL: Anomaly-Resistant Robust Framework for Federated Learning

  2026cites this paper
• FedFCA: Federated Formal Concept Analysis Framework

  2026cites this paper
• Combining parameter fragmentation and group shuffling to defend against the untrustworthy server in federated learning

  2026cites this paper
• Dynamical Adapter Fusion: Constructing A Global Adapter for Pre-Trained Model-based Class-Incremental Learning

  2026cites this paper
• Intelligent model for Alzheimer's disease imaging assessment based on federated learning

  2026cites this paper
• Ophiuchus: Privacy-preserving training service with user-controlled pseudo-noise information generation

  2026cites this paper
• Thwarting gradient inversion in federated learning via generative shadow mapping defense

  2026cites this paper
• SplitML: A Unified Privacy-Preserving Architecture for Federated Split-Learning in Heterogeneous Environments

  2026cites this paper
• Randomized Algorithms and Neural Networks for Communication-Free Multiagent Singleton Set Cover

  2026cites this paper
• Semantic-Guided Dynamic Sparsification for Pre-Trained Model-based Class-Incremental Learning

  2026cites this paper
• Automatic prediction and evaluation of aesthetic outcomes in plastic and oncological surgery: a systematic review

  2026cites this paper
• A data privacy protection method for infectious disease prediction models with balanced training speed and accuracy

  2026cites this paper
• Safeguarding Privacy: Privacy-Preserving Detection of Mind Wandering and Disengagement Using Federated Learning in Online Education

  2026cites this paper
• Audio-Visual Continual Test-Time Adaptation without Forgetting

  2026cites this paper
• A privacy-preserving multi-user retrieval system for multimodal artificial intelligence.

  2026cites this paper
• Why Do Unlearnable Examples Work: A Novel Perspective of Mutual Information

  2026cites this paper
• TCFL: Trapdoor homomorphic encryption based federated learning aggregator with filter

  2026cites this paper
• In silico neuronal morphology classification: A systematic review.

  2026cites this paper
• Exploring privacy mechanisms and metrics in federated learning

  2025cites this paper
• Bilateral Differentially Private Vertical Federated Boosted Decision Trees

  2025cites this paper
• Encrypted Federated Search Using Homomorphic Encryption

  2025cites this paper
• Effective federated XGBoost learning for multi-class classification in Non-IID environments

  2025cites this paper
• Al-Driven Privacy Audits in Adversarial Settings

  2025cites this paper
• A novel federal learning-based framework defending server-level privacy leakage

  2025cites this paper
• Synthetic Data Generation and Privacy-Preserving AI

  2025cites this paper
• Federated Optimizing for Distributing Resources Across Tenants

  2025cites this paper
• Enhanced federated learning for secure medical data collaboration

  2025cites this paper
• Federated Spectral Graph Transformers Meet Neural Ordinary Differential Equations for Non-IID Graphs

  2025cites this paper
• PPFedGNN: An Efficient Privacy-Preserving Federated Graph Neural Network Method for Social Network Analysis

  2025cites this paper
• AEPPFL: Accurate and Efficient Privacy Protection Federal Learning in Industrial IoT

  2025cites this paper
• Hot-pluggable Federated Learning: Bridging General and Personalized FL via Dynamic Selection

  2025cites this paper
• OPUS-VFL: Incentivizing Optimal Privacy-Utility Tradeoffs in Vertical Federated Learning

  2025influential citation
• Blockchain-Enabled Federated Learning Systems with Explainable AI: A Review

  2025cites this paper
• On the Optimal Source Key Size of Secure Gradient Coding

  2025cites this paper
• Poisoning as a Post-Protection: Mitigating Membership Privacy Leakage From Gradient and Prediction of Federated Models

  2025cites this paper
• PP-QADMM: A Dual-Driven Perturbation and Quantized ADMM for Privacy Preserving and Communication-Efficient Federated Learning

  2025cites this paper
• Secure Cluster-Based Hierarchical Federated Learning in Vehicular Networks

  2025cites this paper
• Enhancing Privacy and Efficiency in Ride-Matching Systems through Federated Learning

  2025cites this paper
• LoRAX: LoRA eXpandable Networks for Continual Synthetic Image Attribution

  2025cites this paper
• Secure kNN for Distributed Cloud Environment Using Fully Homomorphic Encryption

  2025cites this paper
• Parameter-oriented contrastive schema and multi-level knowledge distillation for heterogeneous federated learning

  2025cites this paper
• AI and Federated Learning for Cross-Industry Data Collaboration: Applications in Finance, E-Commerce, and Medical Tech

  2025cites this paper
• Exploration and exploitation in continual learning

  2025cites this paper
• Privacy-Preserving Federated Learning for AI-Powered Customer Personalizationoutcomes of migrating an ATG-based e-commerce application to Google Cloud

  2025cites this paper
• Enhancing Deep Learning Model Privacy Against Membership Inference Attacks Using Privacy-Preserving Oversampling

  2025cites this paper
• Privacy-Preserving Diffusion Adaptive Learning With Nonzero-Mean Protection Noise

  2025cites this paper
• Extracting Private Training Data in Federated Learning From Clients

  2025cites this paper
• Privacy-Preserving Deep Learning: A Survey on Theoretical Foundations, Software Frameworks, and Hardware Accelerators

  2025cites this paper
• FedQP: Large-Scale Private and Flexible Federated Query Processing

  2025cites this paper
• Efficient Prototypical Classifier for Class-Incremental Learning

  2025cites this paper
• Federated Learning Meets Fluid Antenna: Towards Robust and Scalable Edge Intelligence

  2025cites this paper
• ProtoDepth: Unsupervised Continual Depth Completion with Prototypes

  2025cites this paper
• Deep learning-based approaches for cellular mechanics analysis and secure data sharing in biomechanics

  2025cites this paper
• Local Differential Privacy for Tensors in Distributed Computing Systems

  2025cites this paper
• Towards Federated Robust Approximation of Nonlinear Systems with Differential Privacy Guarantee

  2025cites this paper
• GHEFL: Grouping Based on Homomorphic Encryption Validates Federated Learning

  2025cites this paper
• State of the Art in Parallel and Distributed Systems: Emerging Trends and Challenges

  2025cites this paper
• Classification and challenges of non-functional requirements in ML-enabled systems: A systematic literature review

  2025cites this paper
• Peafowl: Private Entity Alignment in Multi-Party Privacy-Preserving Machine Learning

  2025cites this paper
• Efficient adaptive defense scheme for differential privacy in federated learning

  2025cites this paper
• Secure Visual Data Processing via Federated Learning

  2025cites this paper
• An FL-based Energy-Efficient Opportunistic Intelligent Node Selection Scheme for Healthcare IoV Applications

  2025cites this paper
• Federated Learning Based on Dimension Selection

  2025cites this paper
• Enhancing Collaborative Deep Learning with Swarm Intelligence and Federated Optimization

  2025cites this paper
• Privacy-Preserving Machine Learning Models

  2025cites this paper
• Functional Oblivious Transfer with Applications in Privacy-Preserving Machine Learning

  2025cites this paper
• Experience Replay and Zero-Shot Clustering for Continual Learning in Diabetic Retinopathy Detection

  2025cites this paper
• Towards effective privacy preservation in federated learning with automatic gradient clipping and gradient transformation perturbation

  2025cites this paper
• Achieving High Efficiency and Privacy in IoT With Federated Learning: A Verifiable Horizontal Approach

  2025cites this paper
• Efficient and Robust Edge AI: Software, Hardware, and the Co-design

  2025cites this paper
• AdvSGM: Differentially Private Graph Learning via Adversarial Skip-Gram Model

  2025cites this paper
• Efficient Differentially Private Fine-Tuning with QLoRA and Prefix Tuning for Large Language Models

  2025cites this paper
• ESC: Erasing Space Concept for Knowledge Deletion

  2025cites this paper
• Distributional and Byzantine Robust Decentralized Federated Learning

  2025cites this paper
• From Hazard Identification to Controller Design: Proactive and LLM-Supported Safety Engineering for ML-Powered Systems

  2025cites this paper